cURL 的維護老大放話要大家注意接下來的安全性更新：「An alert on the upcoming 7.51.0 release」。 最少 11 個安全性更新： This release will bundle no less than _eleven_ security advisories and their associated fixes (unless we get more reported in the time we have left). 由於這些 security issue 的特性，會採取不公開的 … Continue reading →

MIT 弄出來的新玩意，靜態分析工具叫做 Space：「New MIT Scanner Finds Web App Flaws in a Minute」，MIT 官方的報導在「Patching up Web applications」這邊： In tests on 50 popular Web applications written using Ruby on Rails, the system found 23 previously undiagnosed security flaws, and it took no … Continue reading →